Joe notices there are several user accounts on the local network generating spam with embedded
malicious code. Which of the following technical control should Joe put in place to BEST reduce these
incidents?
A.
Account lockout
B.
Group Based Privileges
C.
Least privilege
D.
Password complexity
“Account lockout” and “disabling account” are two different things.
As far as I know account lockout cannot be done manually.
Adding user accounts to a group and disabling the email sending capability would be a good solution.
I vote B
0
1
Email accounts have been penetrated and used to send spam. But how have they been penetrated? We dont know. If it was an online brutforce attack, then account lockout would be the answer. It it was an offline bruteforce attack, password complexity would be correct. Group policy and least privilege are not relevant in my opinion. You cannot disable email sending capability in a company.I have never seen a person who could not send an email.
3
0